Use mod_auth_openidc to connect to multiple clients with the same provider

Question

The mod_auth_openidc wiki describes, how you can connect to different clients that use different issuer: https://github.com/zmartzone/mod_auth_openidc/wiki/Multiple-Providers
However in my case I have two clients with the same provider. More specifically, I have two applications on a Auth0 tenant and the user should be able to choose on the site into which application they want to log in.
Is there a way to specify multiple protected lcoations and depending on which you try to access, you will use a diffrent redirecturi and clientid/clientsecret to authenticate.

score 0 · Answer 1 · answered Dec 03 '20 at 19:06

no, that is not possible; there's also no reason to do that, you'd typically use scopes (and perhaps acr_values) to distinguish between resources in the same security domain (which is what your Apache server is); see also: https://github.com/zmartzone/mod_auth_openidc/wiki/Step-up-Authentication

Use mod_auth_openidc to connect to multiple clients with the same provider

1 Answers1